This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2012-02-17
Product Windows Server 2008 Last view 2022-01-11
Version r2 Type Os
Update sp2  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware x64  
Other *  
 
CPE Product cpe:2.3:o:microsoft:windows_server_2008

Activity : Overall

Related : CVE

  Date Alert Description
7 2022-01-11 CVE-2022-21862

Windows Application Model Core API Elevation of Privilege Vulnerability.
8.8 2022-01-11 CVE-2022-21857

Active Directory Domain Services Elevation of Privilege Vulnerability.
8.8 2022-01-11 CVE-2022-21851

Remote Desktop Client Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21850.
8.8 2022-01-11 CVE-2022-21850

Remote Desktop Client Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21851.
7.5 2022-01-11 CVE-2022-21848

Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.
7.5 2021-12-15 CVE-2021-43893

Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
7.8 2021-12-15 CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability
7.8 2021-12-15 CVE-2021-43248

Windows Digital Media Receiver Elevation of Privilege Vulnerability
7.5 2021-12-15 CVE-2021-43236

Microsoft Message Queuing Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-43222.
7.8 2021-12-15 CVE-2021-43234

Windows Fax Service Remote Code Execution Vulnerability
7.8 2021-12-15 CVE-2021-43230

Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43229, CVE-2021-43231.
7.8 2021-12-15 CVE-2021-43229

Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43230, CVE-2021-43231.
7.5 2021-12-15 CVE-2021-43222

Microsoft Message Queuing Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-43236.
6.5 2021-12-15 CVE-2021-43216

Microsoft Local Security Authority Server (lsasrv) Information Disclosure Vulnerability
9.8 2021-12-15 CVE-2021-43215

iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
7.8 2021-12-15 CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43226.
8.8 2021-01-12 CVE-2021-1706

Windows LUAFV Elevation of Privilege Vulnerability
7.8 2020-11-11 CVE-2020-17087

Windows Kernel Local Elevation of Privilege Vulnerability
6.4 2012-02-17 CVE-2012-1194

The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

CWE : Common Weakness Enumeration

%idName
69% (9) CWE-269 Improper Privilege Management
15% (2) CWE-668 Exposure of Resource to Wrong Sphere
7% (1) CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
7% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')

Snort® IPS/IDS

Date Description
2020-12-08 Microsoft Windows Kernel Cryptography Driver privilege escalation attempt
RuleID : 56231 - Type : OS-WINDOWS - Revision : 1
2020-12-08 Microsoft Windows Kernel Cryptography Driver privilege escalation attempt
RuleID : 56230 - Type : OS-WINDOWS - Revision : 1